On Fri, 2004-02-27 at 14:10, Terrence Martin wrote: > I have the following in my log file > > Feb 27 13:23:07 moonfruit imapd[21825]: TLS engine: cannot load CA data > Feb 27 13:23:07 moonfruit imapd[21825]: starttls: TLSv1 with cipher > AES256-SHA (256/256 bits new) no authentication > Feb 27 13:23:07 moonfruit imapd[21825]: login: > kosmo.ucsd.edu[132.239.27.252] bhill plaintext+TLS > > Now I have a signed cert and SSL appears to be working fine. Is this an > error I should be worried about? What would make the error go away?
CA data is only useful if you're using client-side certificates, but you're only using server-side certificates, so it doesn't matter. If you want to silence it, provide a bundle of CA certificates (like those that come with mod_ssl). You might even be able to make /dev/null the CA bundle file. Wil -- Wil Cooley [EMAIL PROTECTED] Naked Ape Consulting http://nakedape.cc * * * * Linux, UNIX, Networking and Security Solutions * * * * * Naked Ape Consulting http://nakedape.cc * * Cisco Support & Sales http://nakedape.cc/r/cisco *
signature.asc
Description: This is a digitally signed message part
